dependabot[bot] opened a new pull request, #5807: URL: https://github.com/apache/ignite-3/pull/5807
Bumps [com.github.spotbugs:spotbugs-annotations](https://github.com/spotbugs/spotbugs) from 4.8.3 to 4.9.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spotbugs/spotbugs/releases";>com.github.spotbugs:spotbugs-annotations's releases</a>.</em></p> <blockquote> <h2>SpotBugs 4.9.3</h2> <h3>CHANGELOG</h3> <h3>Added</h3> <ul> <li>Introduced <code>UselessSuppressionDetector</code> to report the useless annotations instead of <code>NoteSuppressedWarnings</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3348";>#3348</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Do not report <code>US_USELESS_SUPPRESSION_ON_METHOD</code> on synthetic methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3351";>#3351</a>)</li> </ul> <h3>CHECKSUM</h3> <table> <thead> <tr> <th>file</th> <th>checksum (sha256)</th> </tr> </thead> <tbody> <tr> <td>spotbugs-4.9.3-javadoc.jar</td> <td>3d0d103724cbaaffc27f17d28d9b17f8972fb378397f8f04f6f05268bde110b7</td> </tr> <tr> <td>spotbugs-4.9.3-sources.jar</td> <td>0aa5c905469eb578a3dbe09dcf704cf892568610cdb58550b142d658e37a29d4</td> </tr> <tr> <td>spotbugs-4.9.3.tgz</td> <td>d464d56050cf1dbda032e9482e1188f7cd7b7646eaff79c2e6cbe4d6822f4d9f</td> </tr> <tr> <td>spotbugs-4.9.3.zip</td> <td>3b2dcf86f97d701700121cee4bd22305d4b54fd9ed7666fa0f53933a4ab92251</td> </tr> <tr> <td>spotbugs-annotations-4.9.3-javadoc.jar</td> <td>5fce79dc01a97aae84670922dd3581aa621b980535e4f6695a71db553dcb9cb4</td> </tr> <tr> <td>spotbugs-annotations-4.9.3-sources.jar</td> <td>990ad9f3500499a99466b7c1e01284f4f41d1499358e7dc38c8defc59dab114c</td> </tr> <tr> <td>spotbugs-annotations.jar</td> <td>13532bfe2f45fcd491432221df72d9cd0efb8f987c9245e12befa192c8925ce3</td> </tr> <tr> <td>spotbugs-ant-4.9.3-javadoc.jar</td> <td>346eb5215f9d157ab46c3216a783416e2fa2e8c9d4458143267fb518f81c7d77</td> </tr> <tr> <td>spotbugs-ant-4.9.3-sources.jar</td> <td>591073402e4110093a380169acd3f33b26c2f893c2eaed5a6460d9be0b26014e</td> </tr> <tr> <td>spotbugs-ant.jar</td> <td>3a6f453696294d5314e648d4891d35e34315e11cb63c758a1601021cc0d803d1</td> </tr> <tr> <td>spotbugs.jar</td> <td>710e8b98f1ae23cdb71aaaf07e8d71fb63b44f2bbbaa1df3c3ba0de62aba6ec9</td> </tr> <tr> <td>test-harness-4.9.3-javadoc.jar</td> <td>57f51147e289b5c6493f844beaac97cde57773a1d16ce064e9deb8963b3f99ce</td> </tr> <tr> <td>test-harness-4.9.3-sources.jar</td> <td>22688f14ef808cde65cc46e86d41c617fc397fc4967516006a73ce8bad658b9f</td> </tr> <tr> <td>test-harness-4.9.3.jar</td> <td>9bf5bba9546e4f89032006261dd2921a79fc3044e473ee1fa73af870cb43da15</td> </tr> <tr> <td>test-harness-core-4.9.3-javadoc.jar</td> <td>15aac012f3a8c8d6600075efe824aecab8233778e58345fecca65d7970256311</td> </tr> <tr> <td>test-harness-core-4.9.3-sources.jar</td> <td>13825de35190089490c7e290b52bafe6a9b08ab431177c0191dae9cf2a88a55d</td> </tr> <tr> <td>test-harness-core-4.9.3.jar</td> <td>3c74cc6d2d6f999d403f00f97685587e617d2bf1bfc348bbd0597e785c83feec</td> </tr> <tr> <td>test-harness-jupiter-4.9.3-javadoc.jar</td> <td>a8f276fb01743b8dc9f8cd6b517ae0748e38f673e31615a923c9c61f5fd9de58</td> </tr> <tr> <td>test-harness-jupiter-4.9.3-sources.jar</td> <td>0aefbc5c8bd406e5dc0b1d59bc3afc6889c02010d486b22242f4f19a1a935800</td> </tr> <tr> <td>test-harness-jupiter-4.9.3.jar</td> <td>0e9509de32f8fbc94cf088dbee80394fa93807a766532568e652cd622ce737c8</td> </tr> </tbody> </table> <h2>SpotBugs 4.9.2</h2> <h3>CHANGELOG</h3> <h3>Added</h3> <ul> <li>Reporting useless <code>@SuppressFBWarnings</code> annotations (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/641";>#641</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed html bug descriptions for AT_STALE_THREAD_WRITE_OF_PRIMITIVE and AT_NONATOMIC_64BIT_PRIMITIVE (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3303";>#3303</a>)</li> <li>Fixed an <code>HSM_HIDING_METHOD</code> false positive when ECJ generates a synthetic method for an enum switch (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3305";>#3305</a>)</li> <li>Fix <code>AT_UNSAFE_RESOURCE_ACCESS_IN_THREAD</code> false negatives, detector depending on method order.</li> <li>Fix <code>THROWS_METHOD_THROWS_CLAUSE_THROWABLE</code> reported in a method calling <code>MethodHandle.invokeExact</code> due to its polymorphic signature (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3309";>#3309</a>)</li> <li>Fix <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> false positive in inner class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3310";>#3310</a>).</li> <li>Fix <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> false positive for ECJ compiled enum switches (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3316";>#3316</a>)</li> <li>Fix <code>RC_REF_COMPARISON</code> false positive with Lombok With annotation (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3319";>#3319</a>)</li> <li>Avoid calling File.getCanonicalPath twice to improve performance (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3325";>#3325</a>)</li> <li>Fix <code>MC_OVERRIDABLE_METHOD_CALL_IN_CONSTRUCTOR</code> and <code>MC_OVERRIDABLE_METHOD_CALL_IN_CLONE</code> false positive when the overridable method is outside the class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3328";>#3328</a>).</li> <li>Fix NullPointerException thrown from <code>ThrowingExceptions</code> detector (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3337";>#3337</a>).</li> </ul> <h3>Removed</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md";>com.github.spotbugs:spotbugs-annotations's changelog</a>.</em></p> <blockquote> <h2>4.9.3 - 2025-03-14</h2> <h3>Added</h3> <ul> <li>Introduced <code>UselessSuppressionDetector</code> to report the useless annotations instead of <code>NoteSuppressedWarnings</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3348";>#3348</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Do not report <code>US_USELESS_SUPPRESSION_ON_METHOD</code> on synthetic methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3351";>#3351</a>)</li> </ul> <h2>4.9.2 - 2025-03-01</h2> <h3>Added</h3> <ul> <li>Reporting useless <code>@SuppressFBWarnings</code> annotations (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/641";>#641</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed html bug descriptions for AT_STALE_THREAD_WRITE_OF_PRIMITIVE and AT_NONATOMIC_64BIT_PRIMITIVE (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3303";>#3303</a>)</li> <li>Fixed an <code>HSM_HIDING_METHOD</code> false positive when ECJ generates a synthetic method for an enum switch (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3305";>#3305</a>)</li> <li>Fix <code>AT_UNSAFE_RESOURCE_ACCESS_IN_THREAD</code> false negatives, detector depending on method order.</li> <li>Fix <code>THROWS_METHOD_THROWS_CLAUSE_THROWABLE</code> reported in a method calling <code>MethodHandle.invokeExact</code> due to its polymorphic signature (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3309";>#3309</a>)</li> <li>Fix <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> false positive in inner class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3310";>#3310</a>).</li> <li>Fix <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> false positive for ECJ compiled enum switches (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3316";>#3316</a>)</li> <li>Fix <code>RC_REF_COMPARISON</code> false positive with Lombok With annotation (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3319";>#3319</a>)</li> <li>Avoid calling File.getCanonicalPath twice to improve performance (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3325";>#3325</a>)</li> <li>Fix <code>MC_OVERRIDABLE_METHOD_CALL_IN_CONSTRUCTOR</code> and <code>MC_OVERRIDABLE_METHOD_CALL_IN_CLONE</code> false positive when the overridable method is outside the class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3328";>#3328</a>).</li> <li>Fix NullPointerException thrown from <code>ThrowingExceptions</code> detector (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3337";>#3337</a>).</li> </ul> <h3>Removed</h3> <ul> <li>Removed the <code>TLW_TWO_LOCK_NOTIFY</code>, <code>LI_LAZY_INIT_INSTANCE</code>, <code>BRSA_BAD_RESULTSET_ACCESS</code>, <code>BC_NULL_INSTANCEOF</code>, <code>NP_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR</code> and <code>RCN_REDUNDANT_CHECKED_NULL_COMPARISON</code> deprecated bug patterns.</li> </ul> <h2>4.9.1 - 2025-02-02</h2> <h3>Added</h3> <ul> <li>New detector <code>SharedVariableAtomicityDetector</code> for new bug types <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code>, <code>AT_NONATOMIC_64BIT_PRIMITIVE</code> and <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> (See SEI CERT rules <a href="https://wiki.sei.cmu.edu/confluence/display/java/VNA00-J.+Ensure+visibility+when+accessing+shared+primitive+variables";>VNA00-J</a>, <a href="https://wiki.sei.cmu.edu/confluence/display/java/VNA02-J.+Ensure+that+compound+operations+on+shared+variables+are+atomic";>VNA02-J</a> and <a href="https://wiki.sei.cmu.edu/confluence/display/java/VNA05-J.+Ensure+atomicity+when+reading+and+writing+64-bit+values";>VNA05-J</a>).</li> <li>New detector <code>FindHiddenMethod</code> for bug type <code>HSM_HIDING_METHOD</code>. This bug is reported whenever a subclass method hides the static method of super class. (See <a href="https://wiki.sei.cmu.edu/confluence/display/java/MET07-J.+Never+declare+a+class+method+that+hides+a+method+declared+in+a+superclass+or+superinterface";>SEI CERT MET07-J</a>).</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed the parsing of generics methods in <code>ThrowingExceptions</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3267";>#3267</a>)</li> <li>Accept the 1st parameter of <code>java.util.concurrent.CompletableFuture</code>'s <code>completeOnTimeout()</code>, <code>getNow()</code> and <code>obtrudeValue()</code> functions as nullable (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/1001";>#1001</a>).</li> <li>Fixed the analysis error when <code>FindReturnRef</code> was checking instructions corresponding to a CFG branch that was optimized away (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3266";>#3266</a>)</li> <li>Added execute file permission to files in the distribution archive (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3274";>#3274</a>)</li> <li>Fixed a stack overflow in <code>MultipleInstantiationsOfSingletons</code> when a singleton initializer makes recursive calls (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3280";>#3280</a>)</li> <li>Fixed NPE in <code>FindReturnRef</code> on inner class fields (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3283";>#3283</a>)</li> <li>Fixed NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE false positive when add edu.umd.cs.findbugs.annotations.Nullable (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3243";>#3243</a>)</li> </ul> <h2>4.9.0 - 2025-01-15</h2> <h3>Added</h3> <ul> <li>Updated the <code>SuppressFBWarnings</code> annotation to support finer grained bug suppressions (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3102";>#3102</a>)</li> <li>SimpleDateFormat, DateTimeFormatter, FastDateFormat string check for bad combinations of flag formatting (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/637";>#637</a>)</li> <li>New detector <code>ResourceInMultipleThreadsDetector</code> and introduced new bug type: <ul> <li><code>AT_UNSAFE_RESOURCE_ACCESS_IN_THREAD</code> is reported in case of unsafe resource access in multiple threads.</li> </ul> </li> </ul> <h3>Fixed</h3> <ul> <li>Do not consider Records as Singletons (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2981";>#2981</a>)</li> <li>Keep a maximum of 10000 cached analysis entries for plugin's analysis engines (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3025";>#3025</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spotbugs/spotbugs/commit/1f6a71998b251b557ed157cf3ba92fcdc0b622b5";><code>1f6a719</code></a> release v4.9.3</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/30f22d8079d4e6ac240c5733161c221312d00a00";><code>30f22d8</code></a> fix(deps): update junit5 monorepo to v5.12.1 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3357";>#3357</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/4b0cfffc634bffd320567f070d379fcd99678d2f";><code>4b0cfff</code></a> cleanup: remove redundant implementations of getDetectorClassName() (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3352";>#3352</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/bd996f443104d41cfdd7533cffc7d905a6d8cfac";><code>bd996f4</code></a> chore(deps): update dependency com.diffplug.gradle:goomph to v4.3.0 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3355";>#3355</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/e46c44217978354bf863e001162cafa04b32b45c";><code>e46c442</code></a> Do not report <code>US_USELESS_SUPPRESSION_ON_METHOD</code> on synthetic methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3353";>#3353</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/74507858dd598cbb34006190c30346700b55aaf7";><code>7450785</code></a> Introduce UselessSuppressionDetector to report the useless suppressions</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/830e10ca757b2f9dff61815ef2a3f749b6804505";><code>830e10c</code></a> fix(deps): update dependency checkstyle to v10.21.4 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3347";>#3347</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/b5c7686b671237be5227c1ab312b8198f5592b45";><code>b5c7686</code></a> fix(deps): update dependency org.checkerframework:checker-qual to v3.49.1 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3";>#3</a>...</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/c4b59b1b406f07874bced88a1e8826a22eb40c9f";><code>c4b59b1</code></a> chore(deps): update sphinxdoc/sphinx docker tag to v8.2.3 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3344";>#3344</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/7fd6fa47911795ba1b70a68f9b4f8c2419202e60";><code>7fd6fa4</code></a> fix(deps): update mockito monorepo to v5.16.0 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3345";>#3345</a>)</li> <li>Additional commits viewable in <a href="https://github.com/spotbugs/spotbugs/compare/4.8.3...4.9.3";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: notifications-unsubscr...@ignite.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
